$ rpki-client -vvf rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa File: 3131392e322e34332e302f32342d3234203d3e203338353234.roa (raw, json) Hash identifier: Gxg0pAPp9+nczDwnWsVr2c+wZcacl3BxAU+knsTJXRA= Subject key identifier: 99:C5:00:EB:4F:72:42:AC:0D:27:8D:82:BD:5F:A5:56:81:E4:A2:AF Certificate issuer: /CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Certificate serial: 10BED1A236A5629C63B9FA16A922C2CB6D4245DA Authority key identifier: 94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa Signing time: Sun 03 May 2026 02:46:22 +0000 ROA not before: Sun 03 May 2026 02:41:22 +0000 ROA not after: Sun 02 May 2027 02:46:22 +0000 asID: 38524 IP address blocks: 119.2.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 09:32:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:be:d1:a2:36:a5:62:9c:63:b9:fa:16:a9:22:c2:cb:6d:42:45:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9436E607F375F72BBD96588FBB7CE6D5B628FF86 Validity Not Before: May 3 02:41:22 2026 GMT Not After : May 2 02:46:22 2027 GMT Subject: CN=99C500EB4F7242AC0D278D82BD5FA55681E4A2AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:10:a4:43:8c:71:ca:65:d9:31:69:99:2e:dd: 2c:d9:43:70:89:82:c7:ed:38:c3:21:31:9e:09:7a: 68:2a:3b:93:d0:a6:38:d2:81:e4:35:f1:31:79:34: 20:0f:32:c6:5a:56:89:3a:dd:f7:70:8c:dc:b6:17: e0:76:36:55:7d:cc:98:4e:e3:9b:b7:8b:2f:80:fe: 49:f8:3b:ca:a5:0d:ca:9a:19:9a:50:cf:73:21:38: ad:1e:b2:fb:c6:ec:23:6e:57:9b:1e:6f:97:7a:28: 90:aa:90:b9:a3:9b:6f:b4:68:32:b5:8e:f7:5e:14: db:eb:9d:f5:5d:10:38:ff:17:60:68:aa:fb:64:33: 06:51:85:71:0f:c8:ea:00:b5:02:04:a9:57:b0:0b: b5:b1:51:e1:2a:c4:2c:7d:c4:af:91:81:ff:bb:dc: f7:dd:13:82:ba:e9:ad:88:28:cf:b0:fa:79:dc:04: f4:57:34:07:31:9d:27:27:8a:46:fc:59:a8:03:4d: 85:09:25:9f:f3:98:d8:bf:7b:d1:56:be:a6:36:53: b0:37:1d:2a:d1:08:8e:a2:76:b5:a7:50:42:1d:28: 67:93:84:8b:49:02:40:a1:ff:23:07:70:d2:97:9b: 02:e4:7e:96:ed:7f:26:10:ac:fd:77:21:3a:5d:51: a2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:C5:00:EB:4F:72:42:AC:0D:27:8D:82:BD:5F:A5:56:81:E4:A2:AF X509v3 Authority Key Identifier: keyid:94:36:E6:07:F3:75:F7:2B:BD:96:58:8F:BB:7C:E6:D5:B6:28:FF:86 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/9436E607F375F72BBD96588FBB7CE6D5B628FF86.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/9436E607F375F72BBD96588FBB7CE6D5B628FF86.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/7ff969fc-39c7-44cd-8716-9ce4c6d5ac91/0/3131392e322e34332e302f32342d3234203d3e203338353234.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.2.43.0/24 Signature Algorithm: sha256WithRSAEncryption 36:ea:d9:ff:aa:2d:5f:b6:5d:0f:b6:1d:73:6f:20:fa:94:d3: 98:c6:c5:59:26:44:af:5f:da:53:95:3c:58:06:93:38:51:f3: b9:be:8d:31:cb:e0:1e:47:c3:22:dc:54:b0:db:ac:1b:2a:4e: bc:38:32:20:40:68:4e:d1:6f:65:44:f3:9d:a7:01:74:28:ff: 59:44:72:46:06:82:48:b9:f5:f1:dc:93:79:8d:6e:2c:0f:30: 28:f1:56:d2:5c:f0:76:c2:c6:a5:fe:e3:6a:03:50:e6:84:db: 43:ef:8d:ea:87:dd:aa:ae:25:7a:9d:30:1b:81:38:34:07:65: ff:be:3a:5f:f5:c1:5a:08:8f:da:55:a7:82:7b:06:13:6d:25: fd:cf:4c:4d:e4:59:7b:01:1e:1f:94:bc:d8:98:8b:96:b9:ad: 6b:1d:ea:86:88:85:19:7b:5d:6c:d0:bb:17:eb:bd:e0:83:80: 60:24:28:b1:2e:0b:38:f9:de:68:e7:97:d5:72:34:36:00:d6: 43:b0:73:2a:8a:10:b6:48:ac:50:77:0b:fe:21:e7:e6:72:f2: 57:eb:84:78:a9:a9:90:42:be:fe:f6:ad:ce:50:91:33:de:71: 49:f4:b8:52:b5:77:b6:7b:25:de:d8:25:e1:ed:a3:d7:24:0f: 8c:e4:cc:e1 -----BEGIN CERTIFICATE----- MIIFIzCCBAugAwIBAgIUEL7RojalYpxjufoWqSLCy21CRdowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOTQzNkU2MDdGMzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVC NjI4RkY4NjAeFw0yNjA1MDMwMjQxMjJaFw0yNzA1MDIwMjQ2MjJaMDMxMTAvBgNV BAMTKDk5QzUwMEVCNEY3MjQyQUMwRDI3OEQ4MkJENUZBNTU2ODFFNEEyQUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDWEKRDjHHKZdkxaZku3SzZQ3CJ gsftOMMhMZ4JemgqO5PQpjjSgeQ18TF5NCAPMsZaVok63fdwjNy2F+B2NlV9zJhO 45u3iy+A/kn4O8qlDcqaGZpQz3MhOK0esvvG7CNuV5seb5d6KJCqkLmjm2+0aDK1 jvdeFNvrnfVdEDj/F2BoqvtkMwZRhXEPyOoAtQIEqVewC7WxUeEqxCx9xK+Rgf+7 3PfdE4K66a2IKM+w+nncBPRXNAcxnScnikb8WagDTYUJJZ/zmNi/e9FWvqY2U7A3 HSrRCI6idrWnUEIdKGeThItJAkCh/yMHcNKXmwLkfpbtfyYQrP13ITpdUaKlAgMB AAGjggItMIICKTAdBgNVHQ4EFgQUmcUA609yQqwNJ42CvV+lVoHkoq8wHwYDVR0j BBgwFoAUlDbmB/N19yu9lliPu3zm1bYo/4YwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v N2ZmOTY5ZmMtMzljNy00NGNkLTg3MTYtOWNlNGM2ZDVhYzkxLzAvOTQzNkU2MDdG Mzc1RjcyQkJEOTY1ODhGQkI3Q0U2RDVCNjI4RkY4Ni5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS85NDM2RTYwN0YzNzVGNzJCQkQ5NjU4OEZCQjdDRTZENUI2MjhG Rjg2LmNlcjCBngYIKwYBBQUHAQsEgZEwgY4wgYsGCCsGAQUFBzALhn9yc3luYzov L3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8vN2ZmOTY5ZmMtMzljNy00NGNkLTg3 MTYtOWNlNGM2ZDVhYzkxLzAvMzEzMTM5MmUzMjJlMzQzMzJlMzAyZjMyMzQyZDMy MzQyMDNkM2UyMDMzMzgzNTMyMzQucm9hMBgGA1UdIAEB/wQOMAwwCgYIKwYBBQUH DgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB3AiswDQYJKoZIhvcNAQEL BQADggEBADbq2f+qLV+2XQ+2HXNvIPqU05jGxVkmRK9f2lOVPFgGkzhR87m+jTHL 4B5HwyLcVLDbrBsqTrw4MiBAaE7Rb2VE852nAXQo/1lEckYGgki59fHck3mNbiwP MCjxVtJc8HbCxqX+42oDUOaE20PvjeqH3aquJXqdMBuBODQHZf++Ol/1wVoIj9pV p4J7BhNtJf3PTE3kWXsBHh+UvNiYi5a5rWsd6oaIhRl7XWzQuxfrveCDgGAkKLEu Czj53mjnl9VyNDYA1kOwcyqKELZIrFB3C/4h5+Zy8lfrhHipqZBCvv72rc5QkTPe cUn0uFK1d7Z7Jd7YJeHto9ckD4zkzOE= -----END CERTIFICATE-----Generated at Wed May 13 02:26:57 2026 by rpki-client